The purpose of National Vulnerability Databases (NVDs) is to create a list of security-related software flaws and enable a more automated approach to vulnerability management. The US, China, and Russia all run their own NVDs. There are distinct flaws with all three, meaning there could be major gaps within an organizations vulnerability management strategy. The Russian NVD, run by the country’s Federal Service for Technical and Export Control, misses many vulnerabilities and is slow with what it does publish.”]